Devolutions.CIEM

0.3.177

modules/Azure/Checks/Test-StorageDefaultToEntraAuthorizationEnabled.ps1

                                function Test-StorageDefaultToEntraAuthorizationEnabled {

    <#

    .SYNOPSIS

        Storage account uses Microsoft Entra authorization by default

    .DESCRIPTION

        **Azure Storage accounts** with `Default to Microsoft Entra authorization in the Azure portal` use **token-based Microsoft Entra ID (Azure RBAC)** by default to access blobs, files, queues, and tables, rather than account keys

    .PARAMETER Check

        CIEMCheck object containing check metadata.

    #>

    [CmdletBinding()]

    [OutputType([PSCustomObject[]])]

    param(

        [Parameter(Mandatory)]

        $Check

    )

    $ErrorActionPreference = 'Stop'

    # TODO: Implement check logic based on Prowler check: storage_default_to_entra_authorization_enabled

    [CIEMScanResult]::Create($Check, 'MANUAL', 'This check requires manual implementation. See Prowler check storage_default_to_entra_authorization_enabled for reference.', 'N/A', 'storage Resources')

}